Channels

Services

PacketFence 3.4 supports up to 100 custom VLANs

Support for new hardware and more custom VLANs (virtual local area networks) are among the notable changes and features in the new 3.4 release of PacketFence. The update to the open source network access control (NAC) system improves support for hardware from H3C, Cisco and Brocade, and now supports up to 100 custom VLANs. However, the developers note that the number of VLANs defaults to five "in order to avoid cluttering the Web administration interface" – instructions for enabling additional VLANs are provided in the support FAQ.

When bulk importing network nodes, users can now define default values for PID, category and VOIP in the PacketFence configuration file (pf.conf). Other changes include new graphics for displaying bandwidth consumption and various improvements to Debian support. More than 10 bugs, including issues related to process management and interface configuration errors, have been fixed.

Additionally, the update closes a reflected (also known as non-persistent) cross-site scripting (XSS) hole in the Web Admin guest management system. Further details are not provided, as the bug listing for the security vulnerability is currently restricted.

A full list of fixes, enhancements and new features is provided in the announcement news post; at the time of writing, the change log has yet to be updated to include the update. The GPLv2-licensed PacketFence 3.4.0 is available from the project's releases page as source and as RPMs for versions 5 and 6 of Red Hat Enterprise Linux (RHEL) and CentOS. As the release contains the security fix, the developers advise all users to upgrade.